joseph blase wrote:
Looking at the dump from dmz interface, host from dmz to outside seems
it not being NAT-ed right?
I was not clear enough. Please use 'tcpdump -n -i <dmz>', it's
notnecessary to disclose the dump (and so your IPs) to the mailing list,
tell us only your analysis of the data.
From the pasted output can I be sure that my DMZ IP's are not being
NAT-ed? If yes, then might problem might be that all routes going to
that subnet are still being forward to my existing ipfw box.
You cannot tell by looking only at the DMZ dump.
You have to compare the output from DMZ with the output from WAN, but if
the "advanced outbound NAT" is not enable on the 'Outbound' NAT tab (you
didn't tell us) I bet your NAT is being nated.
Angelo.
---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
